None that I know of and nipper is not avulnerability tool imho. As far as BCP use the fortunate latest BCP on proper or recommended practices.
allowacces ( no telnet, or http UNLESS you have to and you never should have a need for this 
)
snmp access restrict
audit any fwpolicies with "any" in it
fwpolicy ordering ( seq )
strike all weak ciphers from any VPN-ipse ( des or 3des no-no, use SHA1 or better over md5, dhgrp 14 or better but no less than 5,etc.....)
disable weak SSL protocol ( management interfaces, sslvpn portal )
dropped all factory_fortinet certificate for internet facing
audit access profile for local users better yet deploy a remote-auth solution ( ldap free radius tacacs are all free and open source )
enable logging off appliance
following rel-notes and upgrade as required
etc...
Ken
